Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/93A6FC805B7311F09F0BB1A2DAE4EC9C.roa
File: 93A6FC805B7311F09F0BB1A2DAE4EC9C.roa (raw, json)
Hash identifier: 5v7r/6OWOcvHJOCp29FnARzbLzFmw4XjBnJEt7PkoeA=
Subject key identifier: 92:F1:0F:FB:9E:28:7D:D8:6D:4D:E4:B5:4F:7B:82:4B:C0:4C:9D:6F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018C64
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/93A6FC805B7311F09F0BB1A2DAE4EC9C.roa
Signing time: Mon 07 Jul 2025 20:47:21 +0000
ROA not before: Mon 07 Jul 2025 20:47:16 +0000
ROA not after: Wed 03 Sep 2025 20:47:16 +0000
asID: 6453
IP address blocks: 154.210.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101476 (0x18c64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 7 20:47:16 2025 GMT
Not After : Sep 3 20:47:16 2025 GMT
Subject: CN=686c3259-511b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:97:fb:e0:39:ba:e5:ef:12:54:66:c6:ec:03:
91:d7:72:25:2b:1d:f9:f7:1f:75:06:ef:e6:ff:4a:
f2:12:b3:05:1f:fc:92:17:dd:57:bc:6b:43:08:47:
c7:78:a6:6d:3f:0a:5f:25:e1:1e:11:51:15:17:f7:
54:35:0e:42:bf:73:c6:f1:1c:e4:92:dc:03:54:db:
1a:84:df:67:a6:5f:1c:5a:cc:77:5e:23:9b:c7:94:
93:21:02:9d:32:e2:7f:98:ec:14:9c:38:b3:61:b1:
1e:0b:e5:f7:0a:cf:d5:80:6a:8e:69:06:b8:b5:92:
5e:87:3e:bb:f3:ce:0e:2d:f0:08:e1:f6:30:7a:b3:
c6:2d:93:1b:22:83:2e:cd:28:70:ea:df:1c:82:02:
39:72:db:90:16:4d:a8:0a:4c:a3:20:40:a5:26:bf:
e8:4f:fd:73:5b:69:60:06:b5:99:cf:ca:11:a5:e5:
36:df:a5:99:55:7d:13:73:eb:f8:19:a8:d9:fc:f5:
6c:45:a6:61:df:03:2c:4d:df:b1:6a:1a:f2:b1:0a:
8e:ec:b9:f8:66:b3:4d:03:86:fe:a3:6f:ab:1d:e7:
22:d8:9f:9a:1c:77:71:34:35:95:92:2a:19:89:b3:
f4:17:7a:22:85:24:51:0e:f2:58:45:d9:fd:ff:07:
a6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:F1:0F:FB:9E:28:7D:D8:6D:4D:E4:B5:4F:7B:82:4B:C0:4C:9D:6F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/93A6FC805B7311F09F0BB1A2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.222.0/24
Signature Algorithm: sha256WithRSAEncryption
27:88:9b:f2:9a:4c:dd:25:34:b8:04:b0:01:eb:f9:24:39:d3:
47:44:1a:4e:39:18:e9:aa:e1:a0:54:0b:be:4e:d2:7f:e6:6a:
64:7d:05:b2:d4:36:90:77:fa:89:76:2b:42:34:15:86:84:1e:
5f:a7:a8:4f:65:fa:32:0a:2b:0b:ca:b6:2f:e2:3a:ec:38:df:
44:6d:53:46:5c:a2:34:1a:1e:9a:30:a8:00:e1:36:e3:91:17:
2d:5f:17:a7:a8:68:6b:e9:73:49:4f:c5:83:a4:05:14:7c:64:
c6:d4:2b:60:d3:ec:87:85:3e:fa:dc:8e:77:54:96:61:7e:0f:
5b:db:51:72:cb:da:2b:06:30:00:6e:4b:f4:6b:bf:0a:64:a9:
03:b7:c1:28:23:4f:80:a2:5f:03:30:e1:9d:53:bd:1c:bd:ab:
c4:e6:2f:e4:6e:76:2d:54:4d:49:11:60:30:c1:8b:6c:cd:88:
44:77:a3:a2:47:e2:54:a4:6c:7c:92:1e:7e:bf:69:70:d1:5c:
b6:0a:7d:9b:2c:8a:54:7e:45:96:ed:1f:4d:f6:a2:56:6a:1a:
90:76:40:e8:fc:e1:f5:63:84:a8:96:55:80:3a:40:f6:f7:c2:
11:4b:4c:b0:b9:ec:5e:ce:df:29:19:dc:df:d0:24:55:8b:22:
e7:91:c0:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 11:16:48 2025 by rpki-client